Infosecurity News

  1. US DoJ Announces Plan to Shakeup Cybercrime Investigations

    In a speech, the DoJ’s Nicole M. Argentieri announced the merger of the NCET into the CCIPS

  2. Plurilock Launches Generative AI 'Guardrails' Product for Workforces

    PromptGuard is a new cloud access security broker (CASB) that supports employee AI use while ensuring that sensitive data is not released to AI systems

  3. Russian Prosecutor Asks for 18 Years in Jail for Group-IB Founder

    Ilya Sachkov, the founder of cybersecurity provider Group-IB, is accused of state treason

  4. Chinese Hackers Breached Ambassador’s Email

    Storm-0558 attack was revealed last week

  5. Clop Drives Record Ransomware Activity in June

    Scores of victims hit by MOVEit campaign

  6. GitHub Warns Devs of North Korean Attacks

    Social engineering campaign designed to deliver malicious npm packages

  7. New Study Highlights Critical Infrastructure's Resilience

    They exhibited a 20% higher threat detection behavior than the industry average

  8. Zyxel Vulnerability Exploited by DDoS Botnets on Linux Systems

    Fortinet discovered Multiple DDoS botnets, including Dark.IoT, a variant based on Mirai

  9. Microsoft Strengthens Cloud Logging Against Nation-State Threats

    The company said they collaborated closely with CISA to expand cloud logging

  10. Old Roblox Data Leak Resurfaces, 4000 Users' Personal Information Exposed

    Malicious actors have recently used an allegedly old data leak affecting Roblox developers

  11. Half of AI Open Source Projects Reference Buggy Packages

    Study also finds LLMs are poor at detecting malicious code

  12. CNI Firms: Climate Tech is Increasing Cyber Risk

    UK’s critical infrastructure sector concerned over expanding attack surface

  13. Estee Lauder Breached by Two Ransomware Groups

    Cosmetics giant confirms data was taken

  14. Chinese APT41 Linked to WyrmSpy and DragonEgg Surveillanceware

    Lookout attributed WyrmSpy and DragonEgg to APT41 due to overlapping Android signing certificates

  15. Critical API Security Gaps Found in Financial Services

    The Salt Security report also notes a 244% surge in unique attackers between H1 and H2 2022

  16. How Cyber Threat Intelligence Practitioners Should Leverage Automation and AI

    The Cyber Threat Intelligence Summit discussed how automation and generative AI could help CTI practitioners tackle the overload of data they have to process

  17. Biden-Harris Administration Unveils Smart Device Cyber Program

    The criteria for certification are set to be based on cybersecurity guidelines published by NIST

  18. Industry Experts Urge CISA to Update Secure by Design Guidance

    A letter authored by industry experts says that CISA should include specific details on how to implement security-by-design through threat modeling

  19. Scam Job Offers Target Uni Students

    Threat actors exploit high cost of living

  20. NCA: Nation States Using Cybercrime Groups as Proxies

    Crime agency chief warns of surging online threat

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?